IT Security & Privacy

Italy’s Privacy Watchdog Orders Amazon to Stop Recording Workers’ Health & Union Data

Italy’s data protection authority has ordered Amazon to immediately stop processing sensitive personal data relating to more than 1,800 employees at its Passo Corese logistics hub, after finding the company had systematically recorded highly personal information about workers for years.

Wynn Resorts Confirms Employee Data Breach After ShinyHunters Listing

Wynn Resorts has confirmed that employee data was stolen in a cyber incident attributed to the cybercrime group ShinyHunters, after the company briefly appeared on the group’s data leak website. As reported by SecurityWeek, the Las Vegas-based casino and hotel operator acknowledged that “an unauthorized third party acquired certain employee data.”

Poland’s Data Protection Regulator Hits DPD Polska With Over $2.75 Million in GDPR Fines

Poland’s data protection authority has fined DPD Polska more than $2.75 million (over PLN 11 million) after finding serious failures in how the courier company structured its relationships with external carriers and authorized staff to handle personal data.

A Code Error in PayPal’s Loan System Left Sensitive Data Exposed for Months

PayPal is notifying a number of customers that their personal information was exposed following a coding error in its PayPal Working Capital loan application, an issue that persisted for more than five months before being identified.

Sweden Reports Record Personal Data Breaches in 2025 as IMY Links Surge to Major Darknet Leaks

It was a record-breaking year for data breaches in Sweden and not the kind anyone wants to celebrate. The Swedish Data Protection Authority, known as IMY, reported that 12,276 personal data breach notifications were filed in 2025, the highest number recorded since the General Data Protection Regulation came into force in 2018.

California Lands Record $2.75 Million CCPA Settlement With Disney Over Opt-Out Gaps

California has secured its largest settlement yet under the California Consumer Privacy Act, with Attorney General Rob Bonta announcing that The Walt Disney Company will pay $2.75 million to resolve allegations that it failed to fully honor consumers’ requests to opt out of the sale or sharing of their personal information.

Ireland Steps Into Expanding European Probe of Grok & AI-Generated Harm

Ireland’s Data Protection Commission has opened a formal inquiry into X and the Irish entity responsible for the X platform in the EU, over concerns that generative artificial intelligence tools linked to the platform may have been used to create and publish non-consensual intimate images.